$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aff02b71-6734-47d6-b496-c804efa72a0b.roa File: aff02b71-6734-47d6-b496-c804efa72a0b.roa (raw, json) Hash identifier: IjsD+pgpWOAiyMx890PLyO9X94ft1fBd9ZpEoloXU7Q= Subject key identifier: FF:76:D6:F8:8D:97:88:FD:78:28:6B:FF:96:B6:09:F9:FC:02:87:7E Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 70E977E7217AC35604E5B6FCF922D70C23D05612 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aff02b71-6734-47d6-b496-c804efa72a0b.roa Signing time: Sun 03 May 2026 01:21:36 +0000 ROA not before: Sun 03 May 2026 01:21:36 +0000 ROA not after: Sat 01 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:2192::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:e9:77:e7:21:7a:c3:56:04:e5:b6:fc:f9:22:d7:0c:23:d0:56:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 3 01:21:36 2026 GMT Not After : Aug 1 23:59:59 2026 GMT Subject: serialNumber=4ced2075743fbeabeb9fc55d56397ae04c186e1327ff3bf4c2aa45db5ddb28c2, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8f:0e:7e:5e:53:41:20:fa:9b:9f:80:9b:e3: 3e:2d:61:d0:42:d5:a4:01:ce:0e:a4:e3:d8:61:c7: 73:7e:c0:27:b5:cd:22:45:ec:1e:71:e8:58:52:4e: 02:c8:38:a2:29:a5:a2:ee:b6:2f:46:3b:54:51:1f: 7d:b5:bf:c1:2d:9b:17:4e:b0:db:b9:af:35:95:6e: e8:63:93:90:8c:48:1c:4e:ff:ae:09:fa:85:38:da: ea:b7:b8:51:35:6d:8d:ae:d2:09:c3:9a:be:bc:a9: 0c:a6:bd:2a:b4:46:e8:58:bf:db:29:4d:38:48:6f: a3:54:4a:41:64:15:04:41:8e:10:e9:24:4e:a1:47: 64:d5:8c:1e:67:10:25:98:1e:ad:a9:b2:a4:3c:21: 52:1e:9f:7c:9c:99:12:02:1d:24:2c:c0:fe:18:b8: 47:2b:a8:d9:7d:b6:2a:71:3a:78:d5:c9:23:15:44: 48:4a:8d:9b:5d:e7:f4:17:82:52:84:26:7f:24:f8: 1b:fe:f2:5a:69:3b:3e:de:01:fc:0b:83:bc:53:88: c7:28:19:be:fb:76:c5:2c:46:18:4f:b3:17:d0:c0: 9b:2c:c6:48:1a:6d:eb:e8:f8:93:56:5d:06:d8:03: b4:47:6c:bd:90:ab:53:08:70:a9:b6:24:6a:85:95: f7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:76:D6:F8:8D:97:88:FD:78:28:6B:FF:96:B6:09:F9:FC:02:87:7E X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/aff02b71-6734-47d6-b496-c804efa72a0b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:2192::/48 Signature Algorithm: sha256WithRSAEncryption 2f:c6:61:2b:d5:d1:1a:e8:82:77:40:f9:e0:82:1f:3c:ca:5f: b1:c5:5d:19:31:e6:77:79:c0:c3:3a:91:36:1a:cf:7e:b7:99: 93:52:61:37:cc:94:d7:55:7c:95:9f:04:c2:d3:51:79:d7:12: be:ab:90:0a:22:2a:81:62:78:60:56:61:12:ad:fc:32:a1:56: 57:94:4c:f2:f3:23:11:52:8e:77:e6:17:e7:25:ed:cf:31:1d: 10:39:d6:d6:cd:36:ee:e6:bf:0f:d2:5f:00:50:ef:a7:a4:75: ca:12:04:b4:42:dc:ad:3d:66:15:1b:6b:37:6f:d1:e1:03:9d: 2c:94:63:1a:d8:e8:2d:4b:b9:ef:ce:e0:08:12:4e:dd:8a:6a: 19:cc:0f:01:e5:06:db:f1:5c:7b:1b:75:53:83:d9:23:c2:de: 72:d8:44:45:6c:d2:8d:35:8b:3d:7b:e1:8d:71:a1:94:de:cb: 86:de:f5:56:11:41:d4:ba:86:90:d3:94:41:15:8c:5e:94:a4: 1f:09:90:1c:a7:b0:86:b6:a4:3d:53:b4:be:4b:39:e0:a9:02: c0:c7:85:e9:03:b2:19:ed:2a:e0:5c:6d:d9:1b:c9:0d:2c:2c: 9a:c5:f3:51:0b:9b:66:6f:74:d8:39:0d:88:19:4c:39:2c:ea: 84:9d:fc:f5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcOl35yF6w1YE5bb8+SLXDCPQVhIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTAzMDEyMTM2WhcNMjYwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0Y2VkMjA3NTc0M2ZiZWFiZWI5ZmM1NWQ1NjM5N2FlMDRj MTg2ZTEzMjdmZjNiZjRjMmFhNDVkYjVkZGIyOGMyMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCijw5+XlNBIPqbn4Cb4z4tYdBC1aQBzg6k49hhx3N+wCe1 zSJF7B5x6FhSTgLIOKIppaLuti9GO1RRH321v8EtmxdOsNu5rzWVbuhjk5CMSBxO /64J+oU42uq3uFE1bY2u0gnDmr68qQymvSq0RuhYv9spTThIb6NUSkFkFQRBjhDp JE6hR2TVjB5nECWYHq2psqQ8IVIen3ycmRICHSQswP4YuEcrqNl9tipxOnjVySMV REhKjZtd5/QXglKEJn8k+Bv+8lppOz7eAfwLg7xTiMcoGb77dsUsRhhPsxfQwJss xkgabevo+JNWXQbYA7RHbL2Qq1MIcKm2JGqFlfcNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/3bW+I2XiP14KGv/lrYJ+fwCh34wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2FmZjAyYjcxLTY3MzQtNDdkNi1iNDk2LWM4MDRlZmE3MmEwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAIZIwDQYJKoZIhvcNAQELBQADggEBAC/GYSvV0RrogndA+eCCHzzK X7HFXRkx5nd5wMM6kTYaz363mZNSYTfMlNdVfJWfBMLTUXnXEr6rkAoiKoFieGBW YRKt/DKhVleUTPLzIxFSjnfmF+cl7c8xHRA51tbNNu7mvw/SXwBQ76ekdcoSBLRC 3K09ZhUbazdv0eEDnSyUYxrY6C1Lue/O4AgSTt2KahnMDwHlBtvxXHsbdVOD2SPC 3nLYREVs0o01iz174Y1xoZTey4be9VYRQdS6hpDTlEEVjF6UpB8JkBynsIa2pD1T tL5LOeCpAsDHhekDshntKuBcbdkbyQ0sLJrF81ELm2ZvdNg5DYgZTDks6oSd/PU= -----END CERTIFICATE-----Generated at Sun May 3 14:49:18 2026 by rpki-client